Back to directory
WRITEUP #794

Hijacking Someone Else’s DCSync

CloudPost-exploitationActive DirectoryAzure AD
by@nullg0re(Anthony Larcher-Gore)
Program
Microsoft
Published
Sep 15, 2023
Added to HackDex
Feb 1, 2024
Read Full Writeuphttps://nullg0re.com/2023/09/hijacking-someone-else-dcsync/
RELATED WRITEUPS
The Hunt for ALBeast: A Technical Walkthrough
CloudAWS ALB
Addressed AWS defaults risks: OIDC, Terraform and Anonymous to AdministratorAccess
CloudOIDC
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD
CloudPrivilege escalation
SCCMSecrets.py: Exploiting SCCM Policies Distribution For Credentials Harvesting, Initial Access And Lateral Movement
OtherActive Directory
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE

Built with ❤️ by Shubham Rawat